Threat Brief: OWASSRF Vulnerability Exploitation 35,912 people reacted Threat Brief: OWASSRF Vulnerability Exploitation By Robert Falcone and Lior Rochberger December 22, 2022 at 5:30 PM 11 9 min. read
CVE-2022-22965: Spring Core Remote Code Execution Vulnerability Exploited In the Wild (SpringShell) (Updated) 99,134 people reacted CVE-2022-22965: Spring Core Remote Code Execution Vulnerability Exploited In the Wild (SpringShell) (Updated) By Haozhe Zhang, Ken Hsu, Tao Yan, Qi Deng and Robert Falcone March 31, 2022 at 4:30 PM 87 12 min. read
Threat Brief: Ongoing Russia and Ukraine Cyber Activity 71,148 people reacted Threat Brief: Ongoing Russia and Ukraine Cyber Activity By Robert Falcone, Mike Harbison and Josh Grunzweig January 20, 2022 at 12:30 PM 54 8 min. read
Another Apache Log4j Vulnerability Is Actively Exploited in the Wild (CVE-2021-44228) (Updated) 292,518 people reacted Another Apache Log4j Vulnerability Is Actively Exploited in the Wild (CVE-2021-44228) (Updated) By Tao Yan, Qi Deng, Haozhe Zhang, Yu Fu, Josh Grunzweig, Mike Harbison and Robert Falcone December 10, 2021 at 1:00 PM 468 15 min. read
APT Expands Attack on ManageEngine With Active Campaign Against ServiceDesk Plus 59,089 people reacted APT Expands Attack on ManageEngine With Active Campaign Against ServiceDesk Plus By Robert Falcone and Peter Renals December 2, 2021 at 6:00 AM 19 10 min. read
Targeted Attack Campaign Against ManageEngine ADSelfService Plus Delivers Godzilla Webshells, NGLite Trojan and KdcSponge Stealer 102,438 people reacted Targeted Attack Campaign Against ManageEngine ADSelfService Plus Delivers Godzilla Webshells, NGLite Trojan and KdcSponge Stealer By Robert Falcone, Jeff White and Peter Renals November 7, 2021 at 6:00 PM 66 18 min. read
Mespinoza Ransomware Gang Calls Victims “Partners,” Attacks with Gasket, "MagicSocks" Tools 49,721 people reacted Mespinoza Ransomware Gang Calls Victims “Partners,” Attacks with Gasket, "MagicSocks" Tools By Robert Falcone, Alex Hinchliffe and Quinn Cooke July 15, 2021 at 3:00 AM 20 23 min. read
New Shameless Commodity Cryptocurrency Stealer (WeSteal) and Commodity RAT (WeControl) 44,102 people reacted New Shameless Commodity Cryptocurrency Stealer (WeSteal) and Commodity RAT (WeControl) By Robert Falcone and Simon Conant April 29, 2021 at 12:01 AM 35 9 min. read
Actor Exploits Microsoft Exchange Server Vulnerabilities, Cortex XDR Blocks Harvesting of Credentials 40,301 people reacted Actor Exploits Microsoft Exchange Server Vulnerabilities, Cortex XDR Blocks Harvesting of Credentials By Robert Falcone April 15, 2021 at 6:00 AM 21 8 min. read
xHunt Campaign: New BumbleBee Webshell and SSH Tunnels Used for Lateral Movement 47,987 people reacted xHunt Campaign: New BumbleBee Webshell and SSH Tunnels Used for Lateral Movement By Robert Falcone January 11, 2021 at 12:01 AM 20 25 min. read
Threat Assessment: Egregor Ransomware 36,793 people reacted Threat Assessment: Egregor Ransomware By Doel Santos, Brittany Barbehenn and Robert Falcone December 8, 2020 at 6:00 PM 32 5 min. read
xHunt Campaign: Newly Discovered Backdoors Using Deleted Email Drafts and DNS Tunneling for Command and Control 44,497 people reacted xHunt Campaign: Newly Discovered Backdoors Using Deleted Email Drafts and DNS Tunneling for Command and Control By Robert Falcone November 9, 2020 at 12:00 AM 35 12 min. read
Thanos Ransomware: Destructive Variant Targeting State-Run Organizations in the Middle East and North Africa 58,640 people reacted Thanos Ransomware: Destructive Variant Targeting State-Run Organizations in the Middle East and North Africa By Robert Falcone September 4, 2020 at 6:00 AM 14 13 min. read
Threat Assessment: WastedLocker Ransomware 43,232 people reacted Threat Assessment: WastedLocker Ransomware By Alex Hinchliffe, Doel Santos, Adrian McCabe and Robert Falcone July 30, 2020 at 6:00 AM 30 4 min. read
OilRig Targets Middle Eastern Telecommunications Organization and Adds Novel C2 Channel with Steganography to Its Inventory 58,442 people reacted OilRig Targets Middle Eastern Telecommunications Organization and Adds Novel C2 Channel with Steganography to Its Inventory By Robert Falcone July 22, 2020 at 6:00 AM 28 18 min. read
